Playing with fuzzers
Emiel Kollof
coolvibe at hackerheaven.org
Fri Sep 15 03:29:54 PDT 2006
Hi,
Ilja van Sprundel (some of you might know him) was playing around with a
trivial syscall fuzzer in DragonFly 1.6-RELEASE and found a few bugs.
One is a free(NULL) in sendmsg, and a panic in malloc that's triggered by
vfork -> fork1 -> fdcopy -> malloc.
His fuzzer is available here: http://www.digitaldwarf.be/products/sysfuzz.c
The ignore-list that's custom for DragonFlyBSD is:
int ignore[] =
{1,2,29,119,113,120,173,72,162,91,82,251,240,346,341,74,345,322,8,73};
Might be a nice idea to fuzz syscalls and fix bugs.
Cheers,
Emiel
--
Heard that the next Space Shuttle is supposed to carry several Guernsey cows?
It's gonna be the herd shot 'round the world.
Attachment:
pgp00008.pgp
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pgp00008.pgp
Type: application/octet-stream
Size: 191 bytes
Desc: "Description: PGP signature"
URL: <http://lists.dragonflybsd.org/pipermail/kernel/attachments/20060915/7eed480a/attachment-0019.obj>
More information about the Kernel
mailing list